Slashdot Mirror

← Back to Stories (view on slashdot.org)

Serious Security Hole In PuTTY

Posted by timothy on Wednesday August 4, 2004 @12:37AM from the and-now-it's-fixed dept.

Tim 'gk^' Nilimaa writes "A serious security hole has been found in PuTY, version 0.54 and before. Simon Tatham and his fellows released PuTTY 0.55 on 2004-08-03 which solves this bug. The bug may allow servers to use PuTTY to act as a machine that you trust, even beforce you verify the hosts key while connecting using SSH2. An attack could be a fact before you know that you have connected to the wrong machine. I (and they) say: upgrade to PuTTY 0.55 - now."

1 of 72 comments (clear)

Min score:

Reason:

Sort:

Re:Recent SSH chatter... by curtisk · 2004-08-04 02:06 · Score: 0, Troll

Waitaminutenow.....are you Tom Ridge?
:)

--
Sehr geehrter Toilettenbenutzer!